package com.ruoyi.web.controller.system;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import cn.hutool.crypto.asymmetric.SM2;
import com.ruoyi.common.utils.security.SMUtil;
import io.swagger.annotations.Api;
import io.swagger.annotations.ApiImplicitParam;
import io.swagger.annotations.ApiImplicitParams;
import io.swagger.annotations.ApiOperation;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.subject.Subject;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.ResponseBody;
import com.ruoyi.common.core.controller.BaseController;
import com.ruoyi.common.core.domain.AjaxResult;
import com.ruoyi.common.utils.ServletUtils;
import com.ruoyi.common.utils.StringUtils;

/**
 * 登录验证
 * 
 * @author ruoyi
 */
@Api(tags = "通用接口")
@Controller
public class SysLoginController extends BaseController
{
    @GetMapping("/login")
    public String login(HttpServletRequest request, HttpServletResponse response)
    {
        // 如果是Ajax请求，返回Json字符串。
        if (ServletUtils.isAjaxRequest(request))
        {
            return ServletUtils.renderString(response, "{\"code\":\"1\",\"msg\":\"未登录或登录超时。请重新登录\"}");
        }
        SM2 sm2 = genAndSaveSM2();
        request.setAttribute("sm2publickey", SMUtil.sm2PublicKey(sm2));
        return "login";
    }

    @ApiOperation("获取国密SM2公钥")
    @GetMapping("/sm2publickey")
    @ResponseBody
    public AjaxResult<String> sm2PublicKey() {
        genAndSaveSM2();
        return AjaxResult.success("成功", getSM2PublicKey());
    }

    @ApiOperation("用户登录")
    @ApiImplicitParams({
            @ApiImplicitParam(name = "username", value = "账号", dataTypeClass = String.class, paramType = "query", required = true),
            @ApiImplicitParam(name = "password", value = "密码.必须使用国密SM2加密", dataTypeClass = String.class, paramType = "query", required = true),
            @ApiImplicitParam(name = "validateCode", value = "图形验证码", dataTypeClass = String.class, paramType = "query", required = true),
            @ApiImplicitParam(name = "rememberMe", value = "记住我", dataTypeClass = Boolean.class, paramType = "query", required = true)
    })
    @PostMapping("/login")
    @ResponseBody
    public AjaxResult<?> ajaxLogin(String username, String password, Boolean rememberMe)
    {
        try {
            password = sm2Dec(password);
        } catch (Exception e) {
            return AjaxResult.error("未使用国密SM2加密");
        }

        UsernamePasswordToken token = new UsernamePasswordToken(username, password, rememberMe);
        Subject subject = SecurityUtils.getSubject();
        try
        {
            subject.login(token);
            return success();
        }
        catch (AuthenticationException e)
        {
            String msg = "用户或密码错误";
            if (StringUtils.isNotEmpty(e.getMessage()))
            {
                msg = e.getMessage();
            }
            return error(msg);
        }
    }

    @GetMapping("/unauth")
    public String unauth()
    {
        return "error/unauth";
    }
}
